CVE-2007-2282

Sažetak

Cisco Network Services (CNS) NetFlow Collection Engine (NFC) before 6.0 has an nfcuser account with the default password nfcuser, which allows remote attackers to modify the product configuration and, when installed on Linux, obtain login access to the host operating system.

Reference

http://securitytracker.com/id?1017960
http://www.cisco.com/en/US/products/products_security_advisory09186a008082c520.shtml
http://www.kb.cert.org/vuls/id/127545
http://www.osvdb.org/35524
http://www.securityfocus.com/bid/23647
http://www.vupen.com/english/advisories/2007/1545
https://exchange.xforce.ibmcloud.com/vulnerabilities/33861

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-07-2017 - 01:31

Objavljeno

26-04-2007 - 19:19